antares

Member
  • Content count

    11
  • Joined

  • Last visited

Community Reputation

0 Neutral

About antares

  • Rank
    Member
  1. Results of Safe Mode run. No change that I can see. Fixlog attached. The advice offered in the article is no longer valid. All avenues suggested by the article are now being blocked Restore Reset on Windows Recovery Environment is likewise blocked from running. Windows reinstall file from Microsoft is also blocked. A new HDD seems to be the only way out Fixlog.txt
  2. I finally got the code copied exactly as written. Checked it against a printout. Seems some of it was off the screen and didn't get copied. The computer was rescanned and removing any previous dates so that there was only today's scan present. Fixlist was then attached to the folder and desktop. It is now running. About how long should this run before I think something has gone wrong? Browser is Firefox 53. UPDATE ON FIX PROCEEDURE However, the results are not favorable. Apparently this malware keeps FRST from using the FIX option to rewrite the HDD. Nothing has changed and this time I got it right with your code page. See attached files. I am beginning to suspect that this problem is not fixable and that the only alternative it to replace the HDD. If you see something I missed or have additional options please post them. So far all attempts to remove this infection have failed. FRST_27-04-2017 22.13.27.txt Addition_27-04-2017 22.13.27.txt fixlist.txt
  3. That is exactly what I did. I copied only the lines from Close Processes down through Reboot but Windows 10 copies the whole thing and not just the highlighted area. I guess I shall have to copy it by hand since Copy and Paste don't seem to work as normal.
  4. Since there is often confusion in emails I am going to list step by step what I did. 1. I went into the fix log folder and removed all previous scans. 2, I scanned with frst and copied to desktop. 3. I copied your code beginning with "Close processes" and ending and including "reboot" 4, I titled this fixlist and placed it in the same folder with the two scan pages (frst & addition) and on the desktop. 5. I then ran Fix and waited 1 hr. Nothing happened. 6. I did another scan with frst to see if there were any changes. There were none. Apparently Frst Fix option is being prevented from overwriting the operating system with your corrections. 7. I then went inside C drive to find your ECC folder and ran a scan from there since your program will no longer install. "Cannot create Bin64\epp.sys" 8. Emsisoft scan indicated that the problem is getting worse with new additions to the list. Where there were 8 items there are now 16. 9. All files scans are attached. note -1 and -1a are renamed filed from the first scan by frst. 10. I just took a look at the fixlist file and it doesn't look at all like your code which I copied exactly from the email. Somehow when I copy and paste it, it gets changed into what you see. Your code for some reason isn't coping the way you wrote it. I highlighted only what was written in the code box. Is there another way to copy/paste the code other than to write it out longhand. This is probably where the problem lies in coping the code. will no longer install since it cannot create "bin64\sys" FRST_26-04-2017 23.48.49.txt Addition_26-04-2017 23.48.49.txt -1.txt -1a.txt fixlist.txt scan_170424-220942.txt
  5. Things are now turning worse. Before running FRST II wanted to generate a fresh report which is attached. Then your program crashed and upon reinstallation I got the following "cannot create bin64\epp.sys", so I downloaded a fresh copy but upon installation got the same error message. Something has gone wrong and I don't know how to correct it. scan_170424-210249.txt scan_170424-220942.txt
  6. Just so I am understanding you correctly, On the code page I copy the code only and not the words Close Processes at the beginning and the words Reboot at the end. Those lines are excluded form the Fixlist. Copy everything in between those words. .About how long should the operation run once fix is initiated?
  7. copied the code to a fixlist file ran the fix option on the FRST tool. the log is attached. Tool ran continuously for 6 hrs. programs AWD and JRT still refuse to load. "requested resource in use" Fixlog.txt
  8. Both ADWCleaner and JRT Removal Tool were both rejected at installation, "The Requested Resource is in Use."
  9. The scan had to be run in normal mode because instructions on the website are incorrect. Even Microsoft's directions for Safe Mode do not work. The FRSTScan was completed in normal more is attached. However since I tried to run Safe Mode my Apps screen is 2/3 normal size and I do not know how to return it to normal. FRST.txt Addition.txt
  10. Kevin: Thank you for your assistance in this matter. All instructions will be complied with and I fully understand the need for time for a reply. One doesn't expect instant answers but must be patient. As I have been working on the situation things have improved. I am posting the original Emsisoft log alone with a copy of today's log. As you can see I have reduced the number of detected infections from 32 to 8. To make this situation clearer, this is a Windows 10 laptop and as such doesn't have the usual access that you mentioned through My Computer so I am unable to change file settings without know how its done under this new OS. I am very new to Windows 10 and am still feeling my way along. The situation now is as follows: 1. Any tool which I may have attempted to use is blocked with the phrase.."Attempted Resource is in use." 2. Any attempt to install new software is likewise kept from installation with the same phrase. 3. Any attempt to re-install Windows 10 is likewise blocked with the phrase "installation failed to start." 4. Any attempt to delete Registry strings is likewise blocked. That said here are the two log files you requested in the attachments One is the original file run, the second if from today run. Thank you for your assistance. scan_170416-014925.txt scan_170417-201531.txt
  11. Gentlemen: I recently got infected by a piece of malware that locks me out of all my cleaning tools. It won't let me install any new tools to deal the the problem. It has even gone so far as to now allow me to reinstall Windows 10. While your software did remove some of the issues others remain and when after a reboot it notified me that those files could not be moved and thus on a rescan they remain detected. Am posting a copy of your report from the scanner. An assistance you can provide would be helpful as I wish to regain access to my cleaning tools and to reinstall Windows 10 if needed. Turtle Scan.txt